Backdoor:Win32/Losfondup.B
Backdoor:Win32/Losfondup.B is a backdoor Trojan that enables cybercriminals to obtain full remote access and control over a compromised PC, makes changes to user system and settings accounts, and embeds itself into running processes. While being installed, Backdoor:Win32/Losfondup.B makes system changes by downloading malevolent files and making modifications to the Windows Registry. Backdoor:Win32/Losfondup.B will introduce a user account called 'Local Servlce' by purposefully misspelling 'Local Servlce', instead of 'Service', possibly to dupe attacked PC users into thinking it is a genuine Windows user account. Backdoor:Win32/Losfondup.B may be installed and launched by other malware infections. Backdoor:Win32/Losfondup.B registers itself as a geneuine component of the Windows system service 'SENS' (system even notification service) by making alterations to the registry entry. Backdoor:Win32/Losfondup.B also modifies the registry entries to make sure that its altered version of the 'SENS' service is initiated every time you start Windows. When the Windows system service SENS is launched, Backdoor:Win32/Losfondup.B is run instead of the original, legal one. To conceal its occurrence, Backdoor:Win32/Losfondup.B also fulfills the normal functions of the legal SENS service. To make that the altered version of the 'SENS' service, and, therefore, Backdoor:Win32/Losfondup.B itself, is running instead of the genuine one, Backdoor:Win32/Losfondup.B stops 'svchost.exe' and runs the commands, which initiate the changed 'SENS' service.
Table of Contents
SpyHunter Detects & Remove Backdoor:Win32/Losfondup.B
File System Details
# | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
---|---|---|---|
1. | ylccvty.dll | ||
2. | [startup folder]\widoexe.js | ||
3. | noliwutejnm.dat | ||
4. | mnjetuwilon.dat | ||
5. | %ALLUSERSPROFILE%\Documents\[reverse malware file name].dat | ||
6. | 4251f8a819c7b2999724e177b72bdbff | 4251f8a819c7b2999724e177b72bdbff | 0 |
7. | ac0e2cd7093d8303cd6d3c1b703be70c | ac0e2cd7093d8303cd6d3c1b703be70c | 0 |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.